Installing over existing user table gives misleading instruction
|Reported by:||coffee2code||Owned by:|
|Severity:||trivial||Keywords:||has-patch tested commit|
WordPress properly handles being installed into a database with an existing wp_users table (and potentially no other tables). In this situation, instead of generating a random password, WP reports:
User already exists. Password inherited.
However, just below that, it also reports:
Note that password carefully! It is a random password that was generated just for you.
The latter statement is incorrect in this scenario, and could be misleading (and concerning) to the person doing the installation. Nothing is in jeopardy, though.
Granted, this is a bit of an edge case. But the fix is trivial (it compares the password against the first message listed above). If the message is later changed in one place and not the other, the code will just fall back to the currently existing behavior.